Homelab

Components within the network have different roles and handle data at different levels of the OSI model.

Endpoint

The endpoints in a network are the devices that the user directly interacts with. This can take many forms from desktop PCs, Laptops, Tablets, Mobile Phones, Cameras or even Internet Enabled TV’s. Having an insecure endpoint on your network leaves the entire network open to breaches which could spread and leak sensitive data.

Router

The router of the network is a Layer 3 device, responsible for providing a gateway to the network. This allows the users on the internal network to access services outside such as the internet, or external devices to connect to the internal network. Home routers such as the ones provided by your ISP (Internet Service Provider) often act as multiple devices, having built in Firewall Protection, DHCP and WAP (Wireless Access Point) capabilities. Dependant on the home router, it may also have multiple ethernet ports which can connect various endpoints and acts just as a switch would do, but with less interfaces available.

Switch

A Switch works at Layer 2 (Data Link) of the OSI Model. It responsible for the transmission of data across by receiving and distributing data packets to and from the destination and source addresses. In a small home network, a switch isn’t necessary for the running of the network, however when scaling up to include multiple wired devices, a switch would be needed to provided extra physical ports.

I currently run an 8-port TP-Link switch that I have segmented into various vLan’s. When working on other peoples PC’s or Laptop, I often connect them to my network via ethernet. This ensures that any updates or any task requiring internet connectivity is as fast and stable as possible. The vLan provides an extra layer of security and provides a dedicated network for the endpoint I am working on.

Knowing what devices are on your home network is crucial in protecting your digital environment. Having a simple network map can ensure that you are aware of all devices connected and ensure any unauthorised connections are detected so you can disconnect these, to not leave yourself open to attacks from unknown sources.

I have mapped out my home network as shown in the picture. This does not include any form of IP address or Mac addresses as these should ideally be secured and not given out, especially you public facing IP address.